#1  
Old 2nd April 2006, 18:05
ColdDoT ColdDoT is offline
Senior Member
 
Join Date: Jan 2006
Location: Netherland
Posts: 178
Thanks: 0
Thanked 0 Times in 0 Posts
Send a message via MSN to ColdDoT
Default Firewall

Hello

i've got 2 questions
first is do you realy need a firewall on a server?

second if first is yes
is there a script (/etc/init.d/firewall) that uses iptables where i can simple say on 2 lines

TCP_ALLOW="21 22 80" etc.
and
UDP_ALLOW="7777 666" etc.

maybe it is some strange questions. but i don't know much about firewalls on linux.

greets kevin
__________________
2B or not 2B (a pro)
Reply With Quote
Sponsored Links
  #2  
Old 2nd April 2006, 19:27
sbovisjb1 sbovisjb1 is offline
Senior Member
 
Join Date: Feb 2006
Posts: 176
Thanks: 0
Thanked 1 Time in 1 Post
Default

For you're first question you do need a firewall for a server.
second if first is yes

is there a script (/etc/init.d/firewall) that uses iptables where i can simple say on 2 lines

TCP_ALLOW="21 22 80" etc.
and
UDP_ALLOW="7777 666" etc.

for the above, i think that you are trying to allow ports 21, 22 and 80 to be open and UDP 7777 and 666 to be open. IF thay is the case you need to declare them individually. If you wanted ports 21 TO 80 open you could use this 21:80.
Reply With Quote
  #3  
Old 2nd April 2006, 20:02
ColdDoT ColdDoT is offline
Senior Member
 
Join Date: Jan 2006
Location: Netherland
Posts: 178
Thanks: 0
Thanked 0 Times in 0 Posts
Send a message via MSN to ColdDoT
Default

ok the problem i don't know anything about firewalls or how it should work in linux

when i was by a frend of my he had a cool script(/etc/init.d/firewall) thats had 2 rules where you can set what ports there must be allowed

the rules look like
TCP_ALLOW=(you can enter all the ports here)
and 1 for udp

so i tought is there also such of scipt for debian ?

(i don't know if i'm so clearly enough)
__________________
2B or not 2B (a pro)
Reply With Quote
  #4  
Old 2nd April 2006, 21:58
falko falko is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lneburg, Germany
Posts: 41,701
Thanks: 1,900
Thanked 2,735 Times in 2,571 Posts
 
Default

The Bastille firewall ( http://www.bastille-linux.org/source.htm ) has such a script where you can specify the ports that should be open. Download the source tarball, extract it and have a look at the firewall scripts.

ISPConfig also uses the Bastille firewall, so you could also extract the ISPConfig sources and have a look at the folder install_ispconfig/security.
__________________
Falko
--
Download the ISPConfig 3 Manual! | Check out the ISPConfig 3 Billing Module!

FB: http://www.facebook.com/howtoforge

nginx-Webhosting: Timme Hosting | Follow me on:
Reply With Quote
Reply

Bookmarks

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
How to install APF (Advanced Policy Firewall) domino Tips/Tricks/Mods 5 8th March 2006 03:57
Server setup for Web Purposes with custom Firewall ramangill Installation/Configuration 22 8th February 2006 22:43
I need a suitable firewall. agul Server Operation 4 23rd November 2005 00:12
Updating firewall breaks VPS benbalbo Installation/Configuration 2 4th November 2005 06:58
question about the builtin firewall Ovidiu Installation/Configuration 1 9th October 2005 18:30


All times are GMT +2. The time now is 22:43.


Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.